GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,678
Composer 4,237
Erlang 31
GitHub Actions 20
Go 1,998
Maven 5,182
npm 3,710
NuGet 661
pip 3,364
Pub 11
RubyGems 885
Rust 846
Swift 36

Unreviewed advisories

All unreviewed 235,056

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

20,572 advisories

Filter by severity

Sort by

Least recently updated

In multiple managed switches by WAGO in different versions without authorization and with... Critical Unreviewed

CVE-2021-20998 was published May 24, 2022

A flaw was found in noobaa-operator in versions before 5.7.0, where internal RPC AuthTokens... Critical Unreviewed

CVE-2021-3528 was published May 24, 2022

A file upload issue exists in all versions of ArticleCMS which allows malicious users to getshell. Critical Unreviewed

CVE-2020-28063 was published May 24, 2022

File Upload vulnerability exists in ArticleCMS 1.0 via the image upload feature at /admin by... Critical Unreviewed

CVE-2020-20092 was published May 24, 2022

An issue was discovered in HERMES 2.1 in the MBUX Infotainment System on Mercedes-Benz vehicles... Critical Unreviewed

CVE-2021-23909 was published May 24, 2022

admin/user_import.php in Chamilo 1.11.14 reads XML data without disabling the ability to load... Critical Unreviewed

CVE-2021-32925 was published May 24, 2022

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz... Critical Unreviewed

CVE-2021-23907 was published May 24, 2022

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz... Critical Unreviewed

CVE-2021-23908 was published May 24, 2022

An issue was discovered in HERMES 2.1 in the MBUX Infotainment System on Mercedes-Benz vehicles... Critical Unreviewed

CVE-2021-23910 was published May 24, 2022

An issue was discovered in Wind River VxWorks 7. The memory allocator has a possible integer... Critical Unreviewed

CVE-2020-35198 was published May 24, 2022

zzzcms zzzphp before 2.0.4 allows remote attackers to execute arbitrary OS commands by placing... Critical Unreviewed

CVE-2021-32605 was published May 24, 2022

A SQL Injection vulnerability in get_topic_info() in sys/CODOF/Forum/Topic.php in Codoforum... Critical Unreviewed

CVE-2020-13873 was published May 24, 2022

A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels 7\" & 15\" (incl.... Critical Unreviewed

CVE-2021-27384 was published May 24, 2022

An issue was discovered in Smartstore (aka SmartStoreNET) through 4.1.1. Views/Boards/Partials... Critical Unreviewed

CVE-2021-32608 was published May 24, 2022

An issue was discovered in Smartstore (aka SmartStoreNET) through 4.1.1. Views/PrivateMessages... Critical Unreviewed

CVE-2021-32607 was published May 24, 2022

An Arbitrary File Upload vulnerability was discovered in the Golo Laravel theme v 1.1.5. Critical Unreviewed

CVE-2020-23790 was published May 24, 2022

An issue was discovered in Thunar before 4.16.7 and 4.17.x before 4.17.2. When called with a... Critical Unreviewed

CVE-2021-32563 was published May 24, 2022

In JetBrains TeamCity before 2020.2.3, argument injection leading to remote code execution was... Critical Unreviewed

CVE-2021-31909 was published May 24, 2022

In JetBrains WebStorm before 2021.1, code execution without user confirmation was possible for... Critical Unreviewed

CVE-2021-31897 was published May 24, 2022

In JetBrains TeamCity before 2020.2.4 on Windows, arbitrary code execution on TeamCity Server was... Critical Unreviewed

CVE-2021-31914 was published May 24, 2022

In JetBrains TeamCity before 2020.2.4, OS command injection leading to remote code execution was... Critical Unreviewed

CVE-2021-31915 was published May 24, 2022

Hyper-V Remote Code Execution Vulnerability Critical Unreviewed

CVE-2021-28476 was published May 24, 2022

HTTP Protocol Stack Remote Code Execution Vulnerability Critical Unreviewed

CVE-2021-31166 was published May 24, 2022

** UNSUPPORTED WHEN ASSIGNED ** An issue was discovered on Zebra (formerly Motorola Solutions)... Critical Unreviewed

CVE-2021-32089 was published May 24, 2022

Improper validation of the length field of LLDP-MED TLV in userdisk/vport_lldpd in Moxa Camera... Critical Unreviewed

CVE-2021-25848 was published May 24, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

20,572 advisories